Vulnerability Details CVE-2018-2417
Under certain conditions, the SAP Identity Management 8.0 (pass of type ToASCII) allows an attacker to access information which would otherwise be restricted.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.9%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/104112
- https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/
- https://launchpad.support.sap.com/#/notes/2601492
- http://www.securityfocus.com/bid/104112
- https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/
- https://launchpad.support.sap.com/#/notes/2601492
Products affected by CVE-2018-2417
-
cpe:2.3:a:sap:identity_management:8.0